(ambari) branch trunk updated: AMBARI-26122:Security tool reports vulnerability CVE-2016-2183. (#3820)

jialiang Wed, 11 Sep 2024 17:38:03 -0700

This is an automated email from the ASF dual-hosted git repository.

jialiang pushed a commit to branch trunk
in repository https://gitbox.apache.org/repos/asf/ambari.git



The following commit(s) were added to refs/heads/trunk by this push:
     new 1d9cb118c1 AMBARI-26122:Security tool reports vulnerability 
CVE-2016-2183. (#3820)
1d9cb118c1 is described below

commit 1d9cb118c154520584ae38d4e4dca529dbfb8570
Author: zhenye zhang <[email protected]>
AuthorDate: Thu Sep 12 08:37:54 2024 +0800

    AMBARI-26122:Security tool reports vulnerability CVE-2016-2183. (#3820)
---
 ambari-server/conf/unix/ambari.properties | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/ambari-server/conf/unix/ambari.properties 
b/ambari-server/conf/unix/ambari.properties
index 6254f7db85..1d0bdcd33a 100644
--- a/ambari-server/conf/unix/ambari.properties
+++ b/ambari-server/conf/unix/ambari.properties
@@ -132,7 +132,7 @@ 
mpacks.staging.path=$ROOT/var/lib/ambari-server/resources/mpacks
 mpacks-v2.staging.path=$ROOT/var/lib/ambari-server/resources/mpacks-v2
 
 # exclude some ciphers that are not supported by old versions of ssl (this fix 
was added for SLES12)
-security.server.disabled.ciphers=TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384|TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384|TLS_RSA_WITH_AES_256_CBC_SHA256|TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA384|TLS_ECDH_RSA_WITH_AES_256_CBC_SHA384|TLS_DHE_RSA_WITH_AES_256_CBC_SHA256|TLS_DHE_DSS_WITH_AES_256_CBC_SHA256|TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA|TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA|TLS_RSA_WITH_AES_256_CBC_SHA|TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA|TLS_ECDH_RSA_WITH_AES_256_CBC_SHA|TLS_DHE_RSA_WITH_AES_256_CBC_S
 [...]
+security.server.disabled.ciphers=.*DES.*|TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384|TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384|TLS_RSA_WITH_AES_256_CBC_SHA256|TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA384|TLS_ECDH_RSA_WITH_AES_256_CBC_SHA384|TLS_DHE_RSA_WITH_AES_256_CBC_SHA256|TLS_DHE_DSS_WITH_AES_256_CBC_SHA256|TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA|TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA|TLS_RSA_WITH_AES_256_CBC_SHA|TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA|TLS_ECDH_RSA_WITH_AES_256_CBC_SHA|TLS_DHE_RSA_WITH_AES_2
 [...]
 
 server.python.log.name=ambari-server-command.log
 # server.pyton.log.level=(INFO/DEBUG)


---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

(ambari) branch trunk updated: AMBARI-26122:Security tool reports vulnerability CVE-2016-2183. (#3820)

Reply via email to